$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: 0G3umGSNIafLUyMMJjc+XpTQjFcLRIMU7BoomAPsjew= Subject key identifier: A0:15:C8:53:58:AD:81:25:43:25:08:A1:6F:33:FF:2E:81:F4:46:1E Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 270B06FA804B1400DDF61E7404B9055E45E2D43E Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa Signing time: Tue 26 Aug 2025 02:00:01 +0000 ROA not before: Tue 26 Aug 2025 01:55:01 +0000 ROA not after: Tue 25 Aug 2026 02:00:01 +0000 asID: 131745 IP address blocks: 210.247.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Sep 2025 12:15:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:0b:06:fa:80:4b:14:00:dd:f6:1e:74:04:b9:05:5e:45:e2:d4:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Aug 26 01:55:01 2025 GMT Not After : Aug 25 02:00:01 2026 GMT Subject: CN=A015C85358AD8125432508A16F33FF2E81F4461E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:32:98:0f:b4:db:09:83:2a:50:35:9d:8a:47: ab:cf:c0:48:fb:f9:4c:b0:bf:0d:cc:0c:d6:78:c3: e4:10:77:a9:29:7a:97:0b:eb:2f:ae:f6:cc:c8:52: e0:d0:28:a9:a6:c5:76:c3:2b:5d:13:a2:3d:f3:c3: c2:47:c2:31:d8:7f:ff:97:52:0a:2f:af:f6:20:24: 19:07:a8:d8:7c:c5:c2:f6:6d:df:cd:26:bf:4b:d3: 1e:95:6f:76:87:f7:e6:48:a9:50:4c:ed:03:60:18: 53:e0:c7:6e:52:33:8e:2c:e0:4a:97:6b:3e:e2:2e: 12:18:0b:92:ef:aa:d7:08:a5:13:fd:1e:8c:4a:86: f0:1f:2d:fc:64:dc:3c:fe:80:2c:d5:67:89:c1:f8: 7e:be:fc:c4:49:f1:2a:90:cf:19:f3:9c:ff:cd:f8: 7e:1c:c0:bd:53:93:7a:e8:01:9f:f8:be:66:a1:ae: b6:43:79:82:c8:23:98:f6:93:05:85:32:11:d8:1c: d8:8b:8a:d1:26:70:e1:96:e2:9e:53:6e:4a:31:de: 37:28:f9:e1:3a:5a:46:d8:ed:65:d9:ba:06:b3:05: fe:13:20:2d:38:2d:1b:85:b1:73:91:cd:3c:47:ac: 21:f2:b2:16:be:84:f2:d9:9a:d8:94:b8:ea:8d:55: 43:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:15:C8:53:58:AD:81:25:43:25:08:A1:6F:33:FF:2E:81:F4:46:1E X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.252.0/24 Signature Algorithm: sha256WithRSAEncryption 32:00:40:5a:6c:31:79:ef:59:9a:09:ce:35:4c:35:65:10:6d: 9b:d5:ab:86:a5:c4:86:c8:83:65:c0:6e:0c:15:a1:79:fa:6f: fa:10:93:fb:c9:5f:d4:81:72:34:90:a8:e5:5d:50:2c:ef:20: f4:98:24:de:27:32:3d:fa:9a:d7:b3:9b:4e:ce:6f:6d:e2:1b: 37:db:79:5c:68:5c:1e:0a:d0:14:28:68:bf:22:26:e3:3c:e5: 5b:c2:6a:ac:34:92:e0:76:19:2d:cc:d0:91:bd:d6:cc:bb:ab: 0a:79:b1:2d:dc:0b:6e:17:07:97:5a:32:94:56:e9:da:67:62: b8:7b:a7:a8:fe:59:0f:48:7d:0b:91:c4:f4:1c:50:de:b9:a2: 55:f4:31:dd:5b:9d:b2:ff:d9:9c:85:2c:23:c0:52:bf:82:09: 0e:0e:62:e4:80:91:90:d0:38:e3:8f:6a:41:8e:3d:90:ae:1e: d1:75:7a:b3:b6:cf:b2:42:c8:b5:0f:9a:0c:c1:e1:83:b6:5a: a8:63:5c:ae:5c:ef:e5:8b:ed:36:29:2f:b2:56:5d:74:01:89: da:61:37:60:e9:47:bf:f6:78:ee:5b:dd:2c:c5:a9:a2:a4:68: 78:c6:1b:9a:af:b9:1b:e0:66:f9:2c:d0:fb:ed:9e:8e:2f:91: 21:43:3b:c0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJwsG+oBLFADd9h50BLkFXkXi1D4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNTA4MjYwMTU1MDFaFw0yNjA4MjUwMjAwMDFaMDMxMTAvBgNV BAMTKEEwMTVDODUzNThBRDgxMjU0MzI1MDhBMTZGMzNGRjJFODFGNDQ2MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvMpgPtNsJgypQNZ2KR6vPwEj7 +Uywvw3MDNZ4w+QQd6kpepcL6y+u9szIUuDQKKmmxXbDK10Toj3zw8JHwjHYf/+X Ugovr/YgJBkHqNh8xcL2bd/NJr9L0x6Vb3aH9+ZIqVBM7QNgGFPgx25SM44s4EqX az7iLhIYC5LvqtcIpRP9HoxKhvAfLfxk3Dz+gCzVZ4nB+H6+/MRJ8SqQzxnznP/N +H4cwL1Tk3roAZ/4vmahrrZDeYLII5j2kwWFMhHYHNiLitEmcOGW4p5Tbkox3jco +eE6WkbY7WXZugazBf4TIC04LRuFsXORzTxHrCHysha+hPLZmtiUuOqNVUP9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUoBXIU1itgSVDJQihbzP/LoH0Rh4wHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/wwDQYJ KoZIhvcNAQELBQADggEBADIAQFpsMXnvWZoJzjVMNWUQbZvVq4alxIbIg2XAbgwV oXn6b/oQk/vJX9SBcjSQqOVdUCzvIPSYJN4nMj36mtezm07Ob23iGzfbeVxoXB4K 0BQoaL8iJuM85VvCaqw0kuB2GS3M0JG91sy7qwp5sS3cC24XB5daMpRW6dpnYrh7 p6j+WQ9IfQuRxPQcUN65olX0Md1bnbL/2ZyFLCPAUr+CCQ4OYuSAkZDQOOOPakGO PZCuHtF1erO2z7JCyLUPmgzB4YO2WqhjXK5c7+WL7TYpL7JWXXQBidphN2DpR7/2 eO5b3SzFqaKkaHjGG5qvuRvgZvks0Pvtno4vkSFDO8A= -----END CERTIFICATE-----Generated at Fri Sep 19 05:51:50 2025 by rpki-client